Slashdot Mirror

← Back to Stories (view on slashdot.org)

Can You Spoof IP Packets?

Posted by ryuzaki0 on from the something-to-think-about dept.

nweaver writes "Spoofed IP packets are still believed to be a significant problem for the Internet. But are they? The Spoofer Project is attempting to measure the problem. Apparently, 80% of the IP addresses measured no longer support spoofing! Their methodology is simple: have users download a client which attempts to spoof packets to the monitor. Using these packets, they can determine the filter rules. So everyone, download the client and help!"

4 of 211 comments (clear)

  1. Sounds dangerous by suso · · Score: 4, Insightful

    1. Write a piece of software claiming to help monitor spoofed IP packets but really it does something more sinister.
    2. Post a story to Slashdot with a link to the software on an MIT server and ask people to run it on their internal networks and send the data back to the author.
    3. ???
    4. Profit and say to yourself, "suckers"

    Maybe I'm too paranoid. But this is a good example of how social engineering can be used to get you into places you shouldn't be. I guess the source cod
    e is provided. How many people will really read it?

  2. I think I speak for most of us when I say... by Phroggy · · Score: 5, Insightful

    ...No.

    Seriously, why would I want to participate in this?

    --
    $x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
    $x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
  3. If you TRULY want to know... by MindPrison · · Score: 4, Insightful

    ...you can use a network packet monitor, and there's two ways to get your hands on such a device - the cheap...and the expensive way, the expensive way being the safest one (A hardware network monitor = hardware device to look and monitor what's going in/out of your ethernet connection directly connected to your "whatever" device)

    or

    Do the same thing by rigging a second computer, also known as a network monitor. Set up a Linux box...and monitor & control all the ports & packets being delivered to your network, and if you do your homework - you will "know" if that application you just downloaded and executed...truly is honest...and "doesn't phone home...like E.T"... he he he..
    Live and learn kids.

    --
    What this world is coming to - is for you and me to decide.
  4. Spoofing has not been a problem for years by Zarhan · · Score: 4, Insightful

    ...every self-respecting network operator has RPF (or some other antispoof-ingressfilter) enabled at the edge. Gone are the days of spoofing, just like respecting IP packet's loose/strict source routing options and other similar exploits :)